Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Wrong ciphers order #224

Closed
ameshkov opened this issue Aug 10, 2017 · 1 comment
Closed

Wrong ciphers order #224

ameshkov opened this issue Aug 10, 2017 · 1 comment
Assignees
@vityevato
Labels
P2: High Security
Milestone
1.5.0

Comments

@ameshkov
Copy link
Member

While checking TLS implementation on https://www.howsmyssl.com/ you can see this warning:

TLS_RSA_WITH_3DES_EDE_CBC_SHA: This cipher uses 3DES which is vulnerable to the Sweet32 attack but was not configured as a fallback in the ciphersuite order.

The problem is that with AG the last cipher in the list is TLS_EMPTY_RENEGOTIATION_INFO_SCSV, read more here:
https://stackoverflow.com/questions/35254883/avoid-sending-tls-empty-renegotiation-info-scsv-cipher-in-tls-client-hello

With AG the ciphers order is:

TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
TLS_RSA_WITH_AES_128_GCM_SHA256
TLS_RSA_WITH_AES_256_GCM_SHA384
TLS_RSA_WITH_AES_128_CBC_SHA
TLS_RSA_WITH_AES_256_CBC_SHA
TLS_RSA_WITH_3DES_EDE_CBC_SHA
TLS_EMPTY_RENEGOTIATION_INFO_SCSV

Without AG:

TLS_GREASE_IS_THE_WORD_CA
TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
TLS_RSA_WITH_AES_128_GCM_SHA256
TLS_RSA_WITH_AES_256_GCM_SHA384
TLS_RSA_WITH_AES_128_CBC_SHA
TLS_RSA_WITH_AES_256_CBC_SHA
TLS_RSA_WITH_3DES_EDE_CBC_SHA
@ameshkov ameshkov added this to the 1.4.2 milestone Aug 10, 2017
@vityevato vityevato mentioned this issue Aug 15, 2017
Closed
@vityevato
Copy link
Member

commit 41f6a58

@adbuker adbuker mentioned this issue Aug 16, 2017
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@vityevato vityevato

Labels
P2: High Security
Projects
None yet
Milestone
1.5.0
Development

No branches or pull requests
2 participants
@vityevato @ameshkov